From owner-freebsd-current@FreeBSD.ORG  Mon Apr  3 13:13:02 2006
Return-Path: <owner-freebsd-current@FreeBSD.ORG>
X-Original-To: freebsd-current@freebsd.org
Delivered-To: freebsd-current@freebsd.org
Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125])
	by hub.freebsd.org (Postfix) with ESMTP id 85E2D16A400
	for <freebsd-current@freebsd.org>; Mon,  3 Apr 2006 13:13:02 +0000 (UTC)
	(envelope-from ianf@hetzner.co.za)
Received: from mail1a.your-server.co.za (mail1a.your-server.co.za
	[196.7.18.227]) by mx1.FreeBSD.org (Postfix) with ESMTP id D967843D45
	for <freebsd-current@freebsd.org>; Mon,  3 Apr 2006 13:13:01 +0000 (GMT)
	(envelope-from ianf@hetzner.co.za)
Received: from lfw.hetzner.co.za ([196.7.18.226] helo=hetzner.co.za)
	by mail1a.your-server.co.za with esmtps (TLSv1:AES256-SHA:256)
	(Exim 4.54) id 1FQOrW-0005iF-5v; Mon, 03 Apr 2006 15:12:54 +0200
Received: from localhost ([127.0.0.1])
	by hetzner.co.za with esmtp (Exim 4.51 (FreeBSD))
	id 1FQOrW-000KPH-69; Mon, 03 Apr 2006 15:12:54 +0200
To: Randy Bush <randy@psg.com>
From: Ian FREISLICH <if@hetzner.co.za>
In-Reply-To: Message from Randy Bush <randy@psg.com> of "Mon,
	03 Apr 2006 20:10:01 +0800." <17457.4249.383686.765032@roam.psg.com> 
X-Attribution: BOFH
Date: Mon, 03 Apr 2006 15:12:54 +0200
Sender: ianf@hetzner.co.za
Message-Id: <E1FQOrW-000KPH-69@hetzner.co.za>
X-Virus-Scanned: Clear (ClamAV 0.88/1369/Mon Apr  3 12:25:15 2006)
Cc: FreeBSD Current <freebsd-current@freebsd.org>
Subject: Re: natd when doubled 
X-BeenThere: freebsd-current@freebsd.org
X-Mailman-Version: 2.1.5
Precedence: list
List-Id: Discussions about the use of FreeBSD-current
	<freebsd-current.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-current>, 
	<mailto:freebsd-current-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-current>
List-Post: <mailto:freebsd-current@freebsd.org>
List-Help: <mailto:freebsd-current-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-current>,
	<mailto:freebsd-current-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Mon, 03 Apr 2006 13:13:02 -0000

Randy Bush wrote:
> i am in a hotel which gives me an address from 10/8 on the ether.
> i have it plugged into em0 on a -current system.
> 
> i have another machine on wireless out the ath0 port which is
> configured as 192.168.0.1
> 
> my natd.conf is
> 
>     dynamic yes
>     unregistered_only yes
>     interface em0
> 
> my ipfw.rules sez
> 
>     add divert natd all from 192.168.0.0/24 to any via em0
>     add divert natd all from any to 192.168.0.0/24 via ath0
> 
> i suspect the latter two are a bit too clever
> 
> the two machines can ping eachother over the wireless.  but
> nat is just not doing it.
> 
> hit me with he clue bat, please

I thought that all you'd need is:

add divert natd all from any to any via em0

Since natd needs te see all traffic both in and out of the world
facing interface.

Ian

--
Ian Freislich